Description

Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server (jbossas) 3.2.4 through 3.2.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager.

Remediation

References

CVE-2006-5750

Related Vulnerabilities

WordPress Plugin MailChimp List Subscribe Form Multiple Unspecified Vulnerabilities (1.1)

Magento Improper Authorization Vulnerability (CVE-2021-28563)

Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-20416)

WordPress Plugin OMGF-Host Google Fonts Locally Multiple Vulnerabilities (4.5.3)

WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (3.2.4)

Severity

High

Classification

CVE-2006-5750

Tags

Missing Update Known Vulnerabilities